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Claim Rejections - 35 USC §102 

1 . The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 
basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), by another filed 
in the United States before the invention by the applicant for patent or (2) a patent granted on an application for 
patent by another filed in the United States before the invention by the applicant for patent, except that an 
international application filed under the treaty defined in section 351(a) shall have the effects for purposes of this 
subsection of an application filed in the United States only if the international application designated the United 
States and was published under Article 21(2) of such treaty in the English language. 

2. Claims 1-23 are rejected under 35 U.S.C. 102(e) as being anticipated by 
Rallis(6,2 16,230). 

3. As per claims 1,12, Rallis discloses a method of securing a token from unauthorized 
use(see col. 2, lines 52-56), including the steps of: receiving a first message transmitted from a 
host processing device an addressed to a PIN entry device according to a universal serial bus 
(USB) protocol(see col. 1, lines 49-54); accepting a PIN entered into the PIN entry device(see 
fig. 1A, sheet 1, col. 1, lines 49-52); and transmitting a second message including at least a 
portion of the first message and the PIN from the PEN entry device to the token along a secure 
communication path(see col. 1, lines 54-59). 

4. As per claim 2, Rallis discloses the first message is received in the PIN entry device(see 
col. 1, lines 51-54); and the second message is transmitted from the PIN entry device directly to 
the token along the secure communication path(see col. 1, lines 60-67, col. 2, lines 52-56). 

5. As per claim 3, Rallis discloses the step of receiving the first message transmitted from a 
host processing device and addressed to a PIN entry device(see col. 1, lines 51-59), includes 
receiving the first message in a USB-compliant hub, inherent, because Rallis discloses a usb 
port(14)(see fig. 1 A, sheet l)(see col. 2, lines 35-43, 52-56), communicatively coupled to the 
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host processing device via a first communication path(see fig. 1 A, sheet 1, col. 1 5 lines 49-59); 
transmitting the first message to the PIN entry device communicatively coupled to the USB- 
compliant hub, inherent, because Rallis discloses a usb port(14)(see fig. 1 A, sheet 1, col. 1, lines 
49-54); and the step of transmitting the second message comprising the portion of the first 
message and the PIN and at least a portion of the first message from the PIN entry device to the 
token along a secure communication path, transmitting a second message from the pin entry 
device via the USB hub(see col. 1, lines 49-67, col. 2, lines 35-43). 

6. As per claim 4, Rallis discloses wherein the step of transmitting the second message from 
the PIN entry device via the USB-compliant hub includes the steps of: transmitting a third 
message comprising the PIN from the PIN entry device to the USB-compliant hub; processing 
the message in the USB-compliant hub to produce the second message; and transmitting the 
second message from the USB-compliant hub(see col. 1, lines 49-67). The Examiner asserts that 
the third message is whether the pin is correct or not. 

7. As per claim 5, Rallis discloses wherein the signal received from the host processing 
device is generated in an API interface, is inherent in Rallis because Rallis discloses messages 
that are both sent and received by the token and host processing device(i.e. notebook)(see col. 2, 
lines 48-56). 

8. As per claims 6, 13, Rallis discloses the first message is encrypted according to a first 
encryption key; and the pin entry device comprises a decryption module having access to the 
first encryption key for decoding the first message(see col. 1, lines 37-67). 

9. As per claim 7, Rallis discloses wherein the second message is transmitted to the token 
according to a USB-compliant protocol(14)(see fig. 1A, sheet l)(see col. 1, lines 49-59). 
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10. As per claims 8, 15, Rallis discloses wherein the second message is encrypted according 
to a second encryption key and the token comprises a decryption module having access to the 
second encryption key(see col. 3, lines 49-67, col. 4, lines 1-11). 

11. As per claim 9, Rallis discloses wherein the step of transmitting the second message from 
the PIN entry device to the token further comprises the step of: encrypting the second message 
according to a second encryption key stored in the PIN entry device and the token; and 
transmitting the encrypted second message to the token(see col. 3, lines 49-67, col. 4, lines 1-11, 
17-24). 

12. As per claim 10, Rallis discloses wherein the first message is a message transmitted from 
the host processing device to authorize a transaction(see col. 1, lines 49-51). The Examiner 
asserts that the first message is the message that prompts the user to connect the key device(i.e. 
token to the host(i.e. notebook). 

13. As per claim 11, Rallis et al. discloses wherein the first message is a message transmitted 
from the host processing device to authenticate a user of the token(see col. 1, lines 49-54). 

14. As per claim 14, Rallis discloses wherein the module is a software module having 
instructions stored in a memory accessible to the processor(see col. 2, lines 61-67, col. 2, lines 1- 
19). 

15. As per claim 16, Rallis discloses wherein the second module is a software module having 
instructions stored in a memory accessible to the processor(see col. 2, lines 61-67, col. 2, lines 1- 
19). 

16. As per claim 17, Rallis discloses wherein the PIN entry device further includes an output 
device for prompting the user to enter the PIN(see col. 1, lines 49-54). 
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17. As per claim 18, limitations have already been addressed(see claims 1 and 3-4). 

1 8. As per claim 1 9, Rallis discloses encrypting the third message according to a first 
encryption key stored in a memory of the token before transmitting the third message to the 
token(see col. 1, lines 37-59). 

19. As per claim 20, Rallis inherently discloses a USB-compliant hub, because Rallis 
discloses a usb port(14)(see fig. 1 A, sheet 1), communicably coupleable between a host 
processing device and the token, the USB compliant hub having; means for intercepting a 
message addressed to the PEN entry device; means for generating a third message from the first 
message and a user-entered PIN; and means for transmitting the third message to the token; 

a PIN entry device, communicatively coupled to USB-compliant hub, for accepting a user- 
entered PIN and providing the user-entered PIN to the USB compliant hub(see col. 1, lines 49- 
67). The Examiner asserts that the third message is whether the pin is correct or not. 

20. As per claim 21, Rallis discloses wherein the means for intercepting a message addressed 
to the PIN entry device, the means for generating the third message from the first message and a 
user-entered PIN and the means for transmitting the third message to the token(see col. 1, lines 
49-67), including at least one processor having at least one communicatively coupled memory 
storing processor instructions for intercepting a message addressed to the PIN entry device(see 
col. 2, lines 35-38, 48-56), for generating the third message from the first message and a user- 
entered PIN, and for transmitting the third message to the token(see col. 1, lines 49-67). 

21. As per claim 22, Rallis discloses wherein the USB-compliant hub further comprises a 
means for encrypting the third message according to an encryption key stored in a memory of the 
token(see col. 1, lines 49-59). 
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22. As per claim 23, Rallis discloses wherein the means for intercepting a message addressed 
to the PIN entry device, the means for generating the third message from the first message and a 
user-entered PIN(see col. 1, lines 49-59), the means for encrypting the third message according 
to an encryption key stored in the memory of the token(see col. 1, lines 49-59, col. 3, lines 49- 
67), and the means for transmitting the third message to the token comprises at least one 
processor having at least one communicatively coupled memory storing processor(see col. 2, 
lines 35-38)(see col. 1, lines 49-59), instructions for intercepting a message addressed to the PIN 
entry device(see col. 1, lines 49-59), for generating the third message from the first message and 
a user-entered PIN, for encrypting the third message according to an encryption key stored in the 
memory of the token and for transmitting the third message to the token(see col. 1, lines 49-59, 
col. 3, lines 49-67). 

Response to Amendment 

23. First, the Applicant states that the Rallis reference is not directed to a system preventing 
unauthorized use of a token, but rather, a system that uses a token to prevent unauthorized use of 
a computer. The Examiner disagrees. Although, Rallis does disclose preventing an unauthorized 
user to use a computer. Rallis also discloses that the key device(20) is used in conjunction with 
the computer in order to validate the user to perform operations(see col. 2, lines 45-67). 

24. Second, the Applicant states that Rallis does not disclose receiving a first message 
transmitted from a host processing device and addressed to a pin entry device according to a usb 
protocol. The Examiner disagrees. Rallis discloses this because a user is prompted to connect a 
key device(20) to the computer and the user transmits the pin to the notebook computer via the 
usb protocol(see col. 1, lines 49-54, see fig. 1 A, sheet 1, #14, col. 2, lines 35-47). Further, the 
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Applicant is urged to show the Examiner where in the Rallis reference shows the user inputting 
the pin using a laptop. 

25. Third, the Applicant states that Rallis does not disclose transmitting a second message 
including at least a portion of the first message and the pin from the pin entry device to the token. 
The Examiner disagrees that Pin is transmitted in a second message, because Rallis discloses 
messages are transmitted to and from the key device(20) and the notebook computer(see col. 2, 
lines 48-60). 

26. As per claims 2, 12, see above for remarks, same rational applies above. 

27. As per claims 3, 20, the Applicant states that Rallis does not inherently disclose a usb hub 
because it has a usb port. The Examiner disagrees with the Applicant. Further, proof has been 
provided that indicates a system that has a usb port has a usb hub. The Applicant is urged to 
look at Miller for support of a usb port having a usb hub(see col. 1, lines 60-67, col 2, lines 1-2). 

28. As per claim 4, in regards to Applicant's remarks same rational applies above(see above). 

29. As per claim 5, Rallis does discloses API interface(see col. 6, lines 43-56). 

30. As per claims 6,8, 9, 13, 15, 22-23, the Applicant states that Rallis does not discloses a 
pin entry device having a decryption module for decoding the message. Rallis discloses that 
there is a matching decrypted pin, thus the pin that is entered is encrypted. Further, Rallis also 
discloses an encryption key that has a corresponding decryption key(see col. 1, lines 49-64). 

31 . As per claims 10-1 1, the transaction is the user being able to use the computer(see col. 1, 
lines 37-48). 
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32. As per claim 18, Rallis does disclose transmitting messages(see col. 1, lines 49-67, col. 2, 
lines 48-60). The key device and the computer transmit and receive messages that includes the 
pin. The limitation of the hub has already been addressed(see above). 

Final Action 

33. THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 
will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 
CFR 1.136(a) will be calculated from the mailing date of the advisory action. In no event, 
however, will the statutory period for reply expire later than SIX MONTHS from the mailing 
date of this final action. 

Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Jenise E Jackson whose telephone number is (703) 306-0426. 
The examiner can normally be reached on M-Th (6:00 a.m. - 3:30 p.m.) alternate Friday's. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on (703) 305-9648. The fax phone numbers for the 
organization where this application or proceeding is assigned are (703) 305-0040 for regular 
communications and (703) 308-6306 for After Final communications. 
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Any inquiry of a general nature or relating to the status of this application or proceeding 
should be directed to the receptionist whose telephone number is (703) 305-3900. 




March 19, 2004 




AYAZ SHEIKH 
SUPERVISORY PATENT EXAMINEi- 
TECHN0L0GY CENTER 2100 



